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CENTRAL FAX CENTER 

OCT2 4JB|iN^ 10/085,346 

REMARKS 

I- Inttoduction 

In response to the Office Action dated July 24, 2006, claims 1, 10, 19, and 28 have been 
amended. Claims 1-36 remain in the application. Re-examinatioij and re-con5idciatic»n of the 
appHcadon, as amended, is requested. 

II, EaaLAtt^. Rejections 

In paragraph (5) of the Office Action, claims 1, 2, 4, 5, and 8 were rejected under 35 tJ.S.C. 
Sl03(a> as being unpatentable over Cohen et al., U.S. Patent No. 5,282^49 (Cohen) in view of 
Kocber et aL, U.S. Patent No. 6^89,455 (Kocher) and further in view of Wong et aL, U.S, Patent 
No. 6,278,633 (Wong). In paragraph (1 1) of the Office Action, claims 3, G, and 7 were rejected 
under 35 U.S.C. §103(a) as being unpatentable over Cohen in view of Kocher, in vie^- of Wong, sind 
further in view of Pitts, U.S. Publication No. 20020145931 (Pitts). In paragraph (15) 3f die Office 
Action, claim 9 was rejected under 35 U.S.C. §l03(a) as being unpatentable over Cohen in view of 
Kocher, in view of Wong, and furdier in view of Barth, U.S. Patent No. 6,334,216 (Barth). In 
paragraph (17) of the Office Action, claims 10, 11, 13, 14, 17, 18, 27-29, 31, 32, and 35-36 were 
rejected under 35 U.S.C. §1 03(a) as being unpatentable over Kocher in view of Barth and further in 
view of Wong. In paragraph (31) of the Office Action, claims 12, 15, 16, 30, 33, and 34 were 
xejected under 35 U.S.C. §103(a) as being unpatentable over Kocher in view of Bardi in view of 
Wong and further in view of Pitts. In paragraph (38) of die Office Action, claims 19, 20, 22, 23, and 
26 were rejected under 35 U.S.C. §103(a) as being anticipated by Kocher in view of Wong. In 
paragraph (44) of the Office Action, claims 21, 24, and 25 were rejected under 35 U.S-C §103(a) as 
being unpatentable over Kocher in view of Wong and fiirdicr in view of Pitts. 

Applicants respectfully traverse these rejections. 

Specifically, the independent claims were rejected as foDows: 

As per claim 1, Cohen discloses a system for controlling access to digital 
services comprising: 

(a) A control center configured to coordinate and provide digital services (see 

Fig. 2); 

(b) An uplink center configured to receive the digital services /iom the 
control center and transmit the digital services to a satellite (see Fig. l/l #20); 

(c) I'he satellite configured to: 

Receive the digital services from the uplink center (Fig. l/l #22); 
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Process the digital services (Fig. #22 wherein processing of digital services 
is the intrinsic step that allows transmission); and 

Transmit the digital services to a subscriber receiver station (Fig. 1/2 #24); 

(d) The subscriber receiver station configured to: 

Receive die digital services from the satellite (Fig, 1 /2 #26); 
Control access to the digital services through an integrated receiver/ decoder 
aRD)(Fig, 1/2 #30); 

(e) A conditional access module (CAM) communicatively coupled to the IRD 
(Fig. 1/2 #32); 

but does not disclose whetein the CAM comprises: 

a procected nonvolatile memory component, wherein: 

the protected nonvoktfle memory component is used to contain state 
information to provide desired functionaHty and enforce one or more security 
policies for accessing the digital services; and 

the protected nonvolatile memory component is protected £rom 
modification such that the protected nonvolatile memory component is read only; 

access to the protected nonvolatile memory component is isolated; 

a microprocessor's unprotected nonvolatile memory componenr wherein 
programmiag control and a programming charge pump are shared by both the 
protected nonvolatile memory component and die microprocessor's i:n-protected 
nonvolatile memory component; 

a hidden non-modifiable identification number embedded into the protected 
nonvolatile memory component, wherein the identification number uniquely 
identifies the CAM; and 

the identification number is used to limit a cloning attack whe.Tein said 
cloning attack comprises copying the identification number to a new CAM; and 

a fixed state custom logic block, wherein the protected nonvolatile memory 
component is not direcdy accessible via a system bus and access to the protected 
nonvolatile memory component is limited to die custom logic block. 

Kocher discloses wherein the CAM (Fig. 2 #225 wherein the CAM is the 
cryptographic rights unit) comprises: 

a protected nonvolatile memory component (column 21 lines 13-15), 
wherein: 

the protected nonvoktile memory component is iised to contain state 
information to provide desired fimcrionality and enforce one or more security 
policies for accessing the digital services (column 10 lines 36-38 and 45-47 wherein 
the digital services is pay-tv); and 

the protected nonvolatile memory cotnponent is protected from 
modification such that the protected nonvolatile memory component is read only 
(colutmi 10 lines 43-47); 

and 

access to the protected nonvolatile memory component is isolated (Fig* 2 

#265); 

a hidden non-modifiable identification number embedded into the protected 
nonvolatile memory component, wherein the identification number uniquely 
identifies the CAM (column 7 lines 65-67 column 10 lines 38-40 and ^ 3-45: it can be 

-11- 



PAGE 1 3/20 ' RCVD AT 10124/2006 7:00:40 PM [Eastern DayligM 



10/24/2006 16:06 FAX 310*9640941 



P & L LEGAL 



@l014/020 



Serial No. 10/085^6 

wdcrstood that the device key necessarily applies to an identification number which 
as used by the applicant is a security-related parameter. Moreover, in view of column 
10 lines 61-65 and colutnn 11 lines 53-65 it can clearly be seen that the rights key 
which 13 generated frotn the device key/identification number is used to 
decrypt/access the content; which meets the functionality of the identification 
number as defined by the Applicant Moreover in column 12 lines 24-32, 37-40 and 
62-66, Kocher explains the use of the device key to determine permission of access 
to the services, which also meets a requirement of the identification number as stated 
by the Applicant); and 

the identification number is used to limit a cloning attack wherein said 
cloning attack comprises copying the identificatioti nximber to a new ilAM (column 
14 lines 2-9 and column 18 lines 37^5 and column 26 lines 25-40; It can be dearly 
seen that the fiincdon of the device key which is unique to a device implies a 
necessary concern that this key is not copied to another CAM. These passages 
clearly demonstrate that a compromised device key would reqviire the cessation of 
enabling access to those CRUs containing that particular key. This is necessarily 
related to the cloning attack as discussed by the Applicant wherein if an identification 
number is known to be used by multiple devices illegally^ those devices using tbat 
number would not lotxget be effective); and 

a fixed state custom logic block, wherein the protected nonvolatile memory 
component is not direcdy accessible via a system bus and access to the nonvolatile 
memory component is limited ot the custom logic block (Fig. 2 #260 wherein the 
CryptoFirewall is the custom logic block). 

Kocher is analagous art because it discussed a method and apparatus for 
preventing piracy of digital content including the use of a smart card. 

It would have been obvious at the time of the invention to include the 
features of the CAM found in Kocher in the smart card used by Cohen to control 
access to the broadcasted data. 

Motivadon for one to modify Cohen as discussed above would have been to 
improve the security of systctns used to distribute and protect digital content (from 
piracy or attackers) as taught in Kocher (coKimn 5 lines 55-56). 

Kocher does not disclose a microprocessor's unprotected nonvolatile 
memory component wherein programming control and a progtatnmirig charge pump 
are shared by both the protected nonvolatile memory component and the 
microprocessor's unprotected nonvolatile memory component; 

Wong does disclose wherein progratnming control and a programming 
charge pump is shared by memory (column 3 lines 7-19 and column 4 lines 1-7). 

Wong is analagous art because it is directed to system concerning the use of 
non-volatile memory in a circuit; 

It would have been obvious to modify Kocher to include wherein the various 
memory imits, protected and unprotected, share programming control and a 
programming charge pump. Kocher discussed that the protected and unprotected 
memory are located on the same chip, thus enabling the use of a common 
programming control and charge pump. 

Motivation for one to modify Kocher as discussed above would have been 
obvious to one of ordinary skill in the art. As discussed and implied in Wong, 
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shating si charge pump provides unifoimiry for a read or write voltage used when 
accessing the meiiioty cells (column 3 lines 10-13). One of ordinary S flll in the art 
should understand that the practice of sharing a charge pump is very common in the 
circuit design and practice and thus motivatioa for modifying Kocher would include 
the inherent advantages of sharing charge pumps as is known in the art. 

As per claim 10, Kocher discloses a method for limited unauthorized access 
to digital services comprising: 

Embedding a hidden non-modifiable identification number in :o a protected 
nonvolatile memory component (column 21 lines 13-15 and column 18 lines 37-45 
wherein the ideatificadon number is the serial cumber alluded Co and '^hich is stored 
in the protected memory and is non-modifiable in the same marmer ajs the unique 
BATCH__KEY described in column 18 lines 49-52; see also claim 1), wherein: 

The protected nonvolatile memory component is used to contain state 
information to provide desired functionality and enforce one or more security 
policies for accessing the digital services (column tO lines 36-38 and 43-47 wherein 
the digital services is pay-tv); 

The hidden non-modifiable identificadon number uniquely identifies a device 
containing the protected nonvolatile memory component (column 18 lines 37-45 see 
also claim 1); and 

the identificadon number is used to limit a cloning attack wherein said 
cloning attack comprises copying the identification number to a new CAM (column 
14 lines 2-9 and column 18 lines 37-45 and column 26 lines 25-40; Ic can be clearly 
seen that the funcdon of the device key which is unique to a device implies a 
necessary concern that this key is not copies to another CAM. These passages 
clearly demonstrate that a compromised device key would require the cessation of 
enabling access to those CRUs containing that pardcular key. This is necessarily 
related to the cloning attack as discussed by the Applicant wherein if an identification 
number is known to be used by multiple devices illegally, those devices using that 
number would no longer be effective); and 

Isolating access to the nonvolatile memory component such that access to 
the nonvolatile memory component is limited to a fi^ed state custom i.ogic block 
(Fig. 2 #260 wherein the CryptoFitewall is the custom logic block as described in 
column 21 lines 34-35), the nonvolatile memory component is protected such diat 
the nonvolatile memory component is read only (column 10 lines 43-^-7), and the 
nonvolatile memory component is not direclty accessible via a system bus (Fig. 2 
#260). 

Bat do<t& not disclose wherein access to the digital services is based on access 
rights associated with the hidden non-modifiable identification number and 
programming control and a programming charge pump are shared by both die 
protected nonvolatile mcmoty component and a microprocessor's unprotected 
nonvolatile memory component. 

Barth does disclose wherein access to the digital services is ba^ed on access 
rights associated with an identification number (column 4 lines 33-45 wherein the 
access rights is whether it is associated with a blocking note). 
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Barth is anakgous art because it discloses ft method of gaining access to 
setvices based on an identification number utilized in an access card. 

It would have been obvious for one of ordinary skill in the att at the time of 
the invention to modify Kocher to include the method of comparing an 
identification number to a list of unauthorized numbers and their access rights 
before granting access. 

Motivation for one to modify Kocher as discussed above would have been to 
allow system management to prevent access to the services if the corresponding 
number is reported as lost or if the user is delinquent in his obligatioms for the 
services offered as taught in Barth (column 3 lines 37-4-2). 

Wong does disclose wherein programming control and a progrramming 
charge pump is shared by memory (column 3 lines 7-19 and column 4 lines 1-7). 

Wong is analagous art because it is directed to system concerning the use of 
non-volatile memory in a circuit 

It would have been obvious to modify Kocher to include whe::ein the various 
memory units, protected and unprotected, share programming contro. and a 
programming charge pump. Kocher discussed that the protected and unprotected 
memory are located on the same chip, thus enabling the use of a common 
programmixig control and charge pump. 

Motivation for one to modify Kocher as discussed above would have been 
obvious to one of ordinary skill in the art As discussed and implied in Wong, 
sharing a charge pump provides uniformity for a read or write voltage used when 
accessing the memory ccUa (column 3 lines 10-13). One of ordinary s^ill in the art 
should understand tiiat the practice of sharing a charge pump is very common in the 
drcuit design and practice and thus motivation for modifying Kocher would include 
the inherent advantages of sharing charge pumps as is known in the airt 

As per claim 19, Kocher discloses a conditional access module (CAM), (Fig. 
2 #225 wherein the CAM is the cryptographic rights unit) comprising- 
A tnicroprocessor (column 21 lines 1-5); 

An unprotected nonvolatile memory component connected tc- the 

microprocessor (colimm 21 lines 1-5); 

a protected nonvolatile memory component (column 21 lines 13-15), 
wherein: 

the protected nonvolatile memory component is used to contain state 
information to provide desired functionality and enforce one or more security 
policies for accessing the digital services (colunrn 10 liens 36-38 and 43-47 wherein 
the digital services is pay-tv); and 

the protected nonvolatile memory component is protected frcm 
modification such that the protected nonvolatile memory component is read only 
(column 10 lines 43-47); 

and 

access to. the protected nonvolatile memory component is isokted (Fig. 2 

#265); 

a hidden non-modifiable identification number embedded into the protected 
nonvolatile memory component, wherein the identification number uiiquely 
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identifies the CAM (colvzmi 7 lines 65-67 column 10 lines 38-40 and 43-45: it can be 
understood that the device key necessarily applies to an identification aumbet which 
as used by the applicant is a security-related parametet. Moreovet^ in view of column 
10 lines 61-65 and column 1 1 lines 53-65 it can cleariy be seen that the rights key 
which is generated from the device key /identification number is used to 
declypt/access the content; which mecta the functionality of the identificarion 
number as defined by the Applicant. Moreover in column 12 lines 24-32, 37-40 and 
62-66, Kochcr explains the use of the device key to determine permisf ion of access 
to the services, which also meets a requirement of the identification nnmber as seated 
by the Applicant); and 

the identification number is used to limit a cloning attack wherein said 
cloning attack comprises copying the identification number to a new (]AM (column 
14 lines 2-9 and column 18 lines 37-45 and column 26 lines 25-40; It can be cleariy 
seen that the function of the device key which is unique to a device in'tplies a 
necessary concern that this key is not copied to another CAM. These passages 
clearly dcmonatxacc that a compromised device key would require the cessation of 
enabling access to those CRUs containing that particular key. This is necessarily 
related to the cloning attack as discussed by the Applicant wherein if an identification 
number is known to be used by multiple devices illegally, those devices using that 
number would no longer be effective); 

and 

a fixed state custom logic block, wherein the protected nonvolatile memory 
component is not directly accessible via a system biis and access to the protected 
nonvolatile memory cotnponent is limited to the custom logic block ^^ig. 2 #260 
wherein the CryptoFirewall is the custom logic block), 

Kocher does not disclose the CAM wherein programming control and a 
programming charge pump are shared by both the protected nonvolatile memoty 
component and the un-protccted nonvolatile memory component- 
Wong does disclose wherein progtatnming control and a programming 
charge pump is shated by memory (column 3 lines 7-19 and colxmin 4 lines 1-7). 

Wong is analagous art because it is directed to system concenung the use of 
non-volatile memory in a circuit. 

It would have been obvious to modify Kochcr to include wherein the various 
memory units, protected and unproteced^ share ptogramming control and a 
programming diarge pump. Kochcr discussed that the protected and improtecred 
memory are located on the same chip, thus cnabliog the use of a common 
programming control and charge pump. 

Motivation for one to modify Kocher as discussed above wouJd have een 
obvious to one of ordinary skill in the art. As discussed and implied in Wong> 
sharing a charge pump provides uniformity for a read or write voltage used when 
accessing the memory cells (column 3 lines 10-13). One of ordinary sidll in the art 
should understand that the practice of sharing a charge pump is very common in the 
circuit design and practice and thus motivation for modifying Kocher would include 
the inherent advantages of sharing chaise pumps as is known in the art- 
Claim 28 is rejected because it discussed the same subject mat:er as claim 10. 
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Independent claims 1, 10, 19 and 28 are generally directed to the use of an identification 
number. Specifically, the claims address an idcndfication number that is used to limit a cloning 
attack. As set forth throughout the specification including paragraphs [0062], [0072] -[0074J, and 
[0078]), Ae identification number uniquely identifies the device (i.e., the CAM) and such an 
identifier is used in a particular context. In this regard, the claims specifically provide that the 
identLficadon number is used to limit a cloning attack wherein such a cloning attack c>?mpriscs 
copying the identification number to a new pirated CAM. As indicated in the specification, hacking 
techniques typically use a low cost cloning attack wherein the idenidty of a pirate card is copied to a 
new card. Hie claims provide for hiding this identification number in the isolated nonvolatile 
memory component. By preventing access to the identification number (except through the custom 
logic block), the low cost cloning attack techniques are limited. 

In addition. Applicants note that the claims provide fiirther limitations. Namely, the claims 
provide for two nonvoladle memory components. One nonvolatile memory component is 
protected and contains the hidden n\imbcr as described above. The other nonvolatile memory 
component is unprotected and is referred to as a microprocessor's unprotected nonvolatile memory 
component. The claims provide specific Imutations and details regarding both the protected and 
unprotected nonvolatile memory components. In this regard, the claims provide that progtamtmng 
control and a programming charge pump are shared by both nonvolatile memory components. In 
addition, the amended claims now provide that the data and address lines of the protected 
nonvolatile memory component arc routed only to the fixed state custom logic block Thus, not 
only do the two different nonvolatile memory components share programming control and a charge 
pump, but the data, and address lines of the protected component are routed only to the fixed state 
custom logic block. 

Neither of the dtcd references teach nor suggest these various elements of Applicants* 
independent claims. ITie Office Action relies on Kocher to teach the protected nonvolatile memory 
component. However, nowhere in Kocher is there any discussion of the unique configuration 
wherein there are multiple nonvolatile memory components that not only share programming 
control and a charge pump but also wherein data and address lines of the protected component are 
only routed to the fixed state custom logic block. 



-16- 



PAGE 18/20' RCVD AT 10124/2006 7:00:40 PM [Eastern Daylight Time]' SVR:USPTO-EFXRF-1/0' DNIS:273g300 ' 0810:3109640941 ' DURATION (fnin-ss):06-22 



• 10/2^/2008 16:07 FAX 3109640341 P & .L LEGAL ©019/020 

Semi No. 10/085^46 

The Office Action admits that Kocher fails to teach the shared programming control and 
charge pump and instead relics on Wong for such an aspect. Applicants note that Wong actually 
requires a pipelined memory access (see coL 3, lines 7-19). Such a pipeline would clearly teach away 
from the present invention wherein one component is protected and one is not protected such that 
the two components do not share data and address lines. Since the amended claims require the data 
and address lines routed only to the fixed state custom logic block, and the other cotr^ponent is not- 
protected ^.e., and not routed to the custom logic block), Wong cannot possibly teach the shared 
charge pump between the two nonvolatile memory components, Again^ Wong would require the 
pipelined memory wherein the data and address lines are required to be shared betwe«2n the memory 
cells. In this regard, Wong teaches away &om the present invention. Consequently, 5.3 presently set 
fordi in the amended claims, the combination of Wong with Kocker (and/or Cohen) would not 
produce die claimed invention. 

Moreover, the various elements of Applicants' claimed invention together provide 
operational advantages over Cohen, Kocher, Wong, Pitts, and Barth. In addition. Applicants' 
invention sohres problems not recognized by Cohen, Kocher, Wong, Pitts, and Barth 

Thus, Applicants submit that independent claims 1, 10, 19, and 28 are allowable over Cohen, 
Kocher, Wong, Pitta, and Barth. Further, dependent claims 2-9, 11-18, 20-27, and 29-36 are 
submitted to be allowable over 1, 10, 19, and 28, respectively, and thus contain all the limitations of 
the independent claims. In addition, dependent claims 2-9, 11-18, 20-27, and 29-36 r scitc additional 
novel elements not shown by Cohen, Kocher, Wong, Pitts, and Barth. 
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III- Conclusion 

In view of the above, it is submitted that this application is now in good order for allowance 
and such allowance is respectfiilly solicited. Should the Examiner beHevc minor matters still remain that 
can be resolved in a telephone interview, the Examiner is urged to call Applicants' unde;rsigned 
attorney. 

Respect 




n S. Grunebach 
: 33,179 



Date: October 24, 2006 
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